CVE-2008-3211

Scripteen Free Image Hosting Script 1.2 and 1.2.1 allows remote attackers to bypass authentication and gain administrative access by setting the cookid cookie value to 1.

Published: Jul 18, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-3211
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
scripteen / free_image_hosting_script	1.2.1	1.2.1.x
scripteen / free_image_hosting_script	1.2	1.2.x

http://secunia.com/advisories/31083
http://securityreason.com/securityalert/4014
http://www.securityfocus.com/bid/30217
http://www.vupen.com/english/advisories/2008/2106/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43771
https://www.exploit-db.com/exploits/6070

Vulnerability Database

291,048

CVE-2008-3211